Lucene search
K

7 matches found

Qualys Blog
Qualys Blog
added 2020/09/22 3:0 p.m.84 views

PAN-OS Critical Buffer Overflow Vulnerability (CVE-2020-2040) – Automatically Discover, Prioritize and Remediate Using Qualys VMDR®

On Sept 9, 2020, Palo Alto Networks published nine security bulletins addressing vulnerabilities in PAN-OS operating system versions 8.0 or later. One of the nine CVEs released, CVE-2020-2040, received a critical severity rating score of 9.8 based on the CVSS v3 Scoring system. PAN-OS devices are...

10CVSS0.3AI score0.86086EPSS
Exploits7
NVD
NVD
added 2020/09/09 5:15 p.m.16 views

CVE-2020-2037

An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1...

9CVSS0.0356EPSS
Exploits0References1
OSV
OSV
added 2020/09/09 5:15 p.m.6 views

CVE-2020-2037

An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1...

7.2CVSS7.3AI score0.0356EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/09 4:45 p.m.20 views

CVE-2020-2037 PAN-OS: OS command injection vulnerability in the management web interface

An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1...

7.2CVSS7.4AI score0.0356EPSS
Exploits0References1
CVE
CVE
added 2020/09/09 4:45 p.m.84 views

CVE-2020-2037

CVE-2020-2037 is an OS command injection in PAN-OS management Web Interface. The vulnerability affects PAN-OS versions before: 8.1.16, 9.0.x before 9.0.10, and 9.1.x before 9.1.3. It requires authenticated administrative access to the management interface and can allow execution of arbitrary OS c...

9CVSS7.4AI score0.0356EPSS
Exploits0References1Affected Software1
Palo Alto Networks
Palo Alto Networks
added 2020/09/09 4:0 p.m.57 views

PAN-OS: OS command injection vulnerability in the management web interface

An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. Work around: Until PAN-OS software is upgraded to a fixed version, enabling signatures for Unique Threat ID 59971 on traffic...

7.2CVSS4.2AI score0.0356EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/09/09 12:0 a.m.20 views

CVE-2020-2037

An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1...

9CVSS7.6AI score0.0356EPSS
Exploits0References2
Rows per page
Query Builder